|
|
|
|
|
|
by joncrane
2755 days ago
|
|
|
>A lot of the old school recommendations create more issues than they solve, like rotating every database login password every 90 days or so. This is one of the ones that drives me crazy. You can maybe make it work if you have a really good secrets management system, especially if it's hooked into AWS EC2 roles. But having to manually log into servers to change config files/passwords every 90 days is ridiculously disruptive. |
|
|
Then make it so you don't have to manually log into servers to change files/passwords.